Twilio hacked by phishing campaign targeting internet companies

Discussion in 'other security issues & news' started by guest, Aug 8, 2022.

Page 3 of 3
  1. Rasheed187

    Rasheed187 Registered Member

    How much you need to invest in a certain technology is a different story, this doesn't mean it's not virtually bulletproof. But that's why I was trying to figure out if the same technology from hardware tokens could also be implemented in another way. I guess this is what they are trying to do with Passkeys. Although I would also loved to have seen Intel's U2F technology, see link.

    https://www.pcworld.com/article/407...wo-factor-authentication-from-your-phone.html
     
    Rasheed187, Nov 1, 2022
    #51
  2. Rasheed187

    Rasheed187 Registered Member

    Turns out that Dropbox has been hacked too, via some GitHub phishing attack which was able to record username, password and 2FA code, so I assume this was a MITM attack. They have now decided to switch to hardware tokens like YubiKey.

    https://thehackernews.com/2022/11/dropbox-breach-hackers-unauthorizedly.html
     
    Rasheed187, Nov 4, 2022
    #52
Page 3 of 3
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice